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ENTHECXAIMS 

1. (Original) A method of provisioning a user's broadband telephony interface 

comprising the steps of: 

receiving information authenticaUng a provisioning server; 

establishing a communication channel between the user and the provisioning 
server over which is transmitted authorization information from the user to the 

provisioning server; and 

encrypting and transmitting a cryptographic key associated with the user to the 

provisioning server. 

2. (Currently Amended) The method of claim 34 4 further comprising the step 
nf ^..tahlishing . vnir. rnnnection hPtw^en .aid user and said netwoD^ wt^emfHfee 
^ mmunioation chaDaol io a voico chann e l oonnootion , 

3. (Currently Amended) The method of claim 2 further comprising said 
provisioning server sending a request to said user, nver said voice connection, wfeefem 
tho oommunication ohannol is encrypted uping an audio channel with said complement ,, of 
said k ey AK w hich ig onorypt e d and tranflmitted to th e provioioning sorvor prior to 
ostabliohine th e communication ohonnoK 

4. (Currently Amended) The method of claim 2 ^ vyherein tho oryptographio 
lioy acDOoiated v^ith th e u se r is oncryptod using a se s sion k e y which io onoriT[)t e d and 
tran s mitt e d to the provisioning s e rv e r prior to e stabli $ hin g-the communication channel 
passes through said BTL 

5. (Currently Amended) The method of claim 4 wherein said key of said 
provisioning server is a public key th e ses sion k e y and th e ft udio ohann e l - k e y ar e 
e ncrypt e d using a cryptographic k e y that is e ncrypt e d using a cryptographic k e y 
ooflooiatod with tho provioioning oorvof and transmittod to th e provisioning s e rver with 
tho onoryptod flOGoion and audio chann e l key . 
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6. (Currently Amended) Themethodof claim 5 wherein said 
......... ..r..., .n -n r- -'-^ r.-.^nler..nt of .said key SK. ih..>.ypeeg^ 

a w tbonticatiiie the provioionitig oonrer . 

7. (Currently Amended) The method of claim 6 wherein a random nonce is 
included ir^ said tuole with tho oncry p icd ooBDion Itoy . 

8. (Currentty Amended) The method of claim H 4r wherein the infonnation 
that authenticates Q UthontiottUng the provisioning server is a digital certificate. 

9. (Currently Amended) The method of claim 34 + wherein any number of 
said kevs taken from the set rnnsistins of K - AK. and SK are symmetric keys, where a 
symmetric kev is equal tn its complement t ho cryptographto k e y aGOOoiat e d with the us e r 
i s a symmetrio key . 

10. (Currently Amended) The method of claim 34+ wherein ^ e t yptographi < 
key ossociatod with th e us e r said complement of said kev K is a public key and said key 
K is cofr e 5pon ^flg4» a private key Dtorad in th e broadband t e l e phony intorfaoe . 

11. (Original) The method of claim 34 + wherein a hash is included with each 
transmission. 

12. (Currently Amended) A pparatus fe roodband t e lephony intorfaoe 
comprising: 

a first interface to a landline u ser telephone; 

a second interface to a communication network with access to a provisioning 

server; 

memory for storing cryptographic keys; 
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a processor connected to the memory and the first and second interfaces for 
executing program instructions, the program instructions causing the processor to 

perform the steps of: 

receiving - ^- y nrov kinning server and information authenticating the 

provisioning server; 

^ .Hn p . ..nHnm kev K Rnd its c omplem ent , a random session key and its 

rnm plement. And a random a ndin channel kev AK and itg complement, wherea 
rr^m plement of a \ce.v J a ke v that decrypts messages messay. encrypted witt^ ^aid 
kev J: i ^btdbliahinfl Q communioation ohnnnrJ betwoon the uo o r tolophono an d thf^ 
provioioning gorvor ovor v . ^hich is tranpmitted authorization informatiou from tbo unor to 
the provisioning s e rv w; and 

<sftndin p to said provisioning serve r information that includes $aid complement of 
said K encrypted with said kev of said provisioni ng server, and a tuple encrypted with 
said K- which tunle includes said complement of said SK. and said compleiK^ent of said 
.^ Konorypting and transmitting a cryptographic koy aPDOciatod with the usor to the 
provisioning s e rv e f , 

13- (Currently Amended) The ap paratus broadband t e l e phony intorfao e of 
claim 12 wherein the processor also ^nerates a public/private kev pair, and sends the 
public kev to said provisioning server, communication ohann e l is a voice channel 
conn e ction . 

14. (Currently Amended) The a pparatus broadband t e l e phony int e rfac e of 
claim 43- 12-Wherein the communication channol is encrypted using an audio chann e l key 
which is e ncrypt e d and transmitted to the provisioning s e rv e r prior to e stablishing th e 
processor establishes a session c ommunication channel with said provisioning server . 

15. (Currently Amended) The apparatus broadband t e l e phony int e rfac e of 
claim 14 wherein the processor communicates with said provisioning server over said 
session or>ptographi€ key a ss ocioted with th e u se r i s e ncrypt e d using a se s sion k e y which 
is e ncrypt e d and tran s mitt e d to th e provisioning ise rv e r prior to OQtabliflhing the 
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communicatioa channel by -^nHinr m.ss, ,^s encr .nt^ ^aiH Vr y SK .nd receiving 
^^.. ^.^ ^nrrvnted " "^h ^.id cnmolement of said key SIC . 

16. (Canceled). 

17. (Canceled). 

18. (Currently Amended) The a pparatus fao uJUaiiJ LL l u|j l .rin y i nmrfnrn of 
claim 17 wherein a random nonce is included in .aid tuple wm Qi u u u uy pt ntl . er no n 
ieey. 

1^. (Currently Amended) The agBaatuS broodbond t e l e phony intorface of 
\ claim 12 wherein the information authenticating the provisioning server is a digital 

certificate. 

20. (Currently Amended) The apparatus broadband tolophony int e rfac e of 
claim 12 wherein the ctyptographi e key K oggociatod with th e us e r i s a symmetric key. 

21. (Canceled). 

22. (Original) The broadband telephony interface of claim 12 wherein a hash is 
included with each transmission. 

23. (Canceled). 

24. (Canceled). 

25. (CsMceled). 

26. (Canceled). 
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27. (Canceled), 

28. (Canceled). 

29. (Canceled). 

30. (Canceled). 

31. (Canceled). 

32. (Canceled). 
33* (Canceled). 

34* (New) A method of employing a user*s broadband telephony interface (BTI), 
executed in said BTI in communication with a network, comprising the steps of: 
sending a request to a provisioning server; 

receiving a key of said provisioning server and information that authenticates said 
provisioning server; 

generating a random key K and its complement, a random session key SK and its 
complement, and a random audio channel key AK and its complement, where a 
complement of a key J is a key that decrypts messages message encrypted with said 
key J; 

sending to said provisioning server information that includes said complement of 
said K encrypted with said key of said provisioning server, and a tuple enciypted with 
said K, which tuple includes said complement of said SK, and said complement of said 
AK; and 

receiving an acknowledgement from said provisioning server. 

35. (New) The method of claim 3 further comprising the steps of: 
relaying said request to said user; 
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receiving responsive information from said user; and 
forwarding said responsive information to said provisioning server, encrypted 

vy'ith said key AK. 

36. (New) The method of claim 35 further comprising the steps of: 
generating a public/private key pair; and 

sending the generated public key to said provisioning server, encrypted with said 
key SK. 

A \ 37. (New) The method of claim 36 further comprising the step of receiving an 

U acknowledgement message ftom said provisioning server, in response to said sending of 

the generated pubUc key, which acknowledgement message is encrypted with said 

complement of said key SK. 

38. (New) The method of claim 34 4: wherein said step of sending to said 
provisioning server includes information encrypted with said key SK. 

39. (New) The method of claim 38 wherein said information encrypted with said 
key SK provides an address of said BTI. 
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